2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1796 | — | — | 9.3% | Dec 31, 2004 | PHP remote file inclusion vulnerability in HotNews 0.7.2 and earlier allows remote attackers to execute arbitrary PHP co... |
| CVE-2004-1586 | — | — | 0.8% | Dec 31, 2004 | Flash Messaging clients can ignore disconnecting commands such as "shutdown" from the Flash Messaging Server 5.2.0g (rev... |
| CVE-2004-2096 | — | — | 1.8% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in Mephistoles httpd 0.6.0 final allows remote attackers to execute arbitrary s... |
| CVE-2004-2106 | — | — | 2.3% | Dec 31, 2004 | Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to list directories via a direct request to (1)... |
| CVE-2004-1790 | — | — | 1.9% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in the web management interface in Edimax AR-6004 ADSL Routers allows remote at... |
| CVE-2004-1399 | — | — | 1.7% | Dec 31, 2004 | Directory traversal vulnerability in the Attachment module 2.3.10 and earlier for phpBB allows remote attackers to read ... |
| CVE-2004-0984 | — | — | 0.4% | Dec 31, 2004 | Unknown vulnerability in the dotlock implementation in mailutils before 1:0.5-4 on Debian GNU/Linux allows attackers to ... |
| CVE-2004-0985 | — | — | 20.2% | Dec 31, 2004 | Internet Explorer 6.x on Windows XP SP2 allows remote attackers to execute arbitrary code, as demonstrated using a docum... |
| CVE-2004-1791 | — | — | 1.7% | Dec 31, 2004 | The web management interface in Edimax AR-6004 ADSL Routers uses a default administrator name and password, which also a... |
| CVE-2004-0567 | — | — | 72.3% | Dec 31, 2004 | The Windows Internet Naming Service (WINS) in Windows NT Server 4.0 SP 6a, NT Terminal Server 4.0 SP 6, Windows 2000 Ser... |
| CVE-2004-1544 | — | — | 1.3% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in Search.jsp in JSPWiki 2.1.120-cvs and earlier allows remote attackers to exe... |
| CVE-2004-1589 | — | — | 1.3% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in GoSmart Message Board allows remote attackers to execute inject web script o... |
| CVE-2004-1792 | — | — | 3.5% | Dec 31, 2004 | swnet.dll in YaSoft Switch Off 2.3 and earlier allows remote attackers to cause a denial of service (infinite loop) via ... |
| CVE-2004-1797 | — | — | 3.9% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in search.php for FreznoShop 1.3.0 RC1 and earlier allows remote attackers to i... |
| CVE-2004-2123 | — | — | 0.9% | Dec 31, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in Nextplace.com E-Commerce ASP Engine allow remote attackers to inj... |
| CVE-2004-2180 | — | — | 1.0% | Dec 31, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in WowBB Forum 1.61 allow remote attackers to inject arbitrary web s... |
| CVE-2004-1783 | — | — | 2.8% | Dec 31, 2004 | Directory traversal vulnerability in Net2Soft Flash FTP Server 1.0 allows remote attackers to read and create arbitrary ... |
| CVE-2004-1787 | — | — | 1.3% | Dec 31, 2004 | SQL injection vulnerability in PostCalendar 4.0.0 allows remote attackers to execute arbitrary SQL commands via search q... |
| CVE-2004-0561 | — | — | 2.3% | Dec 31, 2004 | Format string vulnerability in the log routine for gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a deni... |
| CVE-2004-0997 | — | — | 0.4% | Dec 31, 2004 | Unspecified vulnerability in the ptrace MIPS assembly code in Linux kernel 2.4 before 2.4.17 allows local users to gain ... |
| CVE-2004-1050 | — | — | 67.1% | Dec 31, 2004 | Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long (1) SRC or ... |
| CVE-2004-0999 | — | — | 1.4% | Dec 31, 2004 | zgv 5.5.3 allows remote attackers to cause a denial of service (application crash via segmentation fault) via crafted mu... |
| CVE-2004-0560 | — | — | 3.0% | Dec 31, 2004 | Integer overflow in gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly exec... |
| CVE-2004-1789 | — | — | 11.2% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in the web management interface in ZyWALL 10 4.07 allows remote attackers to in... |
| CVE-2004-1788 | — | — | 2.5% | Dec 31, 2004 | ASP-Nuke 1.3 and earlier places user credentials under the web document root with insufficient access control, which all... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now